Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/s020AdZHhnjMBD5Fp_MuQ4HwcaE.roa
File: s020AdZHhnjMBD5Fp_MuQ4HwcaE.roa (raw, json)
Hash identifier: kauV50Vs1oQTQ8tpY+xiDhUtCzp8ccYY0vIu4YoGsd4=
Subject key identifier: B3:4D:B4:01:D6:47:86:78:CC:04:3E:45:A7:F3:2E:43:81:F0:71:A1
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FD01069FA289B4AE155074E542B3FA442
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/s020AdZHhnjMBD5Fp_MuQ4HwcaE.roa
Signing time: Fri 31 May 2024 19:11:27 +0000
ROA not before: Fri 31 May 2024 19:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 31 May 2024 20:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d0:10:69:fa:28:9b:4a:e1:55:07:4e:54:2b:3f:a4:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 31 19:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b34db401d6478678cc043e45a7f32e4381f071a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d6:6d:23:63:95:eb:5d:f2:c9:f8:35:ae:7b:
3d:71:37:a5:94:3f:c6:73:48:d6:0d:29:8c:98:e8:
a2:4e:02:6f:9f:41:21:2d:e4:95:10:19:76:51:0c:
b7:7f:d4:25:6d:3e:41:7b:af:b5:bf:ed:6d:90:c1:
7d:de:38:8c:5d:44:8d:52:9c:e1:1a:68:c5:03:42:
d9:98:3a:4a:e7:89:30:fd:6e:37:49:61:83:89:b3:
cf:76:14:44:c4:42:c1:bd:25:87:a8:cf:12:60:4d:
e2:8c:6e:a1:65:76:c5:69:00:2d:97:47:f8:47:53:
c2:2b:0d:88:36:cb:53:cd:53:24:a8:37:fe:5b:d4:
a9:0c:58:17:c7:7c:a4:bc:67:54:45:27:9d:77:97:
41:f5:21:d2:14:60:bd:f0:cc:b8:93:96:94:9a:9d:
8c:25:0d:d8:dd:9f:a8:39:f5:f7:74:d9:b8:05:f3:
a3:94:ad:8e:2f:01:ec:d4:1f:a0:21:45:6b:0c:1a:
25:b1:60:32:99:a3:d1:76:b4:ee:cd:b7:51:e9:3a:
9b:59:ae:72:b2:ba:61:f0:9c:b7:c9:22:a0:5e:97:
9d:52:71:90:8f:55:fd:f4:ed:9f:c8:93:bc:aa:56:
d2:48:e1:7f:da:91:3c:70:ac:93:3d:23:e2:3e:40:
2a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:4D:B4:01:D6:47:86:78:CC:04:3E:45:A7:F3:2E:43:81:F0:71:A1
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/s020AdZHhnjMBD5Fp_MuQ4HwcaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5f:73:3f:8d:07:4c:79:f5:f1:60:c7:91:5e:9a:cb:72:b8:09:
bd:71:12:1a:fd:8a:4c:79:79:fc:fe:ac:43:e9:a2:a3:f8:7b:
30:9a:20:6b:3e:ba:1f:e6:f1:fc:28:95:de:0f:13:b0:5b:79:
12:4d:aa:a8:23:62:97:e6:3a:8f:bc:27:e0:c0:5a:63:e7:ca:
39:2b:2f:e5:cc:c9:2c:7e:c5:46:c3:c6:f4:18:4c:e9:2f:48:
5a:04:94:26:7d:60:fc:79:6d:70:d7:19:3f:04:02:ae:cd:32:
d5:05:4f:fe:65:ae:3f:c6:02:bb:fc:e5:b5:b9:ef:d4:4c:4a:
2f:46:08:d1:6d:3f:23:f5:4a:ce:15:1d:60:1b:94:05:cc:30:
7d:7d:e5:11:5c:15:47:36:c9:cf:d6:f5:c4:b7:96:cb:7e:af:
cb:e5:cf:4d:ef:be:d3:d7:70:41:e2:88:17:25:34:ce:bf:5b:
90:f2:7f:0e:13:98:6b:28:d6:79:22:ec:29:80:eb:d8:98:db:
de:4b:18:bb:f9:75:d3:54:e3:4f:0b:41:8e:97:2b:04:aa:01:
fd:91:d1:93:ac:fc:0c:a4:77:6d:1b:ca:75:a9:53:cb:e7:8a:
79:dd:37:c6:13:f9:ab:62:c2:31:c5:ed:18:43:f5:2d:9f:85:
42:c4:36:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org